IPSec (Internet Protocol Security) is a security protocol in the network layer that provides cryptographic security services that flexibly support combinations of authentication, integrity, access control, and confidentiality.
Lotus Sametime Unified Telephony uses a generic mechanism to provide authentication, integrity, access control, and confidentiality for any server-to-server interface. This implementation makes use of the SLES10 enterprise server.
Usually, IPSec is only configured during installation of the system; a reconfiguration is not required unless the network configuration changes. Lotus Sametime Unified Telephony automatically controls the setup of IPSec during system startup.
Because an incorrect configuration can lead to a total outage of network communication, it is strongly recommended that these tools be used only to monitor the status of the IPSec subsystem.
Parent topic: Security topics
The IPSec subsystem is configured during system startup using Telephony Control Server Assistant to configure IPSec rules and profiles.
IPSec (Internet Protocol Security) - Implementation and Usage
Based on the enterprise security policy, IPSec (Internet Protocol Security) can be used between Lotus Sametime Unified Telephony and several applications in order to enable secure interfaces.
IPSec (Internet Protocol Security) - Configuration
The configuration of IPSec (Internet Protocol Security) can be done for different deployment scenarios with the RPM package Openswan as basic IPSec module.
How to Access Menu in Software
IPSec Profile Management
Once created, the IPSec security profile provides all data required to create an inbound and outbound IPSec policy entry in the Security Policy Database.
IKE (Internet Key Exchange) Profile Management
In addition to the IPSec security profile providing all data required to create an inbound and outbound IPSec policy entry in the Security Policy Database, it also specifies the underlying key exchange mechanism that will be used for setup of the security associations.
Packet Filter Rules Security Management
Packet filtering is used to provide rudimentary firewall protection for Lotus Sametime Unified Telephony application software. This mechanism blocks traffic to the Lotus Sametime Unified Telephony system, except on those specific IP addresses and ports that are required to be accessible. Lotus Sametime Unified Telephony allows for the creating, displaying, and modifying of packet filter rules.
Secure Endpoint Device Security Management
Secure Endpoint Devices are provisioned when a Secure Network Configuration is required. Because all traffic to or from a secure network will only be accepted or transmitted using IPSec, securing the endpoint devices is very important.